Presentation is loading. Please wait.

Presentation is loading. Please wait.

The CoDeeN Content Distribution Network Vivek S. Pai, Limin Wang, KyoungSoo Park, Ruoming Pang, Larry Peterson Princeton University August 12, 2003.

Published bySherman Day Modified over 9 years ago

Similar presentations

Presentation on theme: "The CoDeeN Content Distribution Network Vivek S. Pai, Limin Wang, KyoungSoo Park, Ruoming Pang, Larry Peterson Princeton University August 12, 2003."— Presentation transcript:

1 The CoDeeN Content Distribution Network Vivek S. Pai, Limin Wang, KyoungSoo Park, Ruoming Pang, Larry Peterson Princeton University August 12, 2003

2 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab2 Content Distribution Networks Replicates Web content broadly Redirects clients to “best” copy Load, locality, proximity Offloads work from origin servers Multiplexes load spikes Reduces overprovisioning Ex: Akamai, Mirror Image, Speedera

3 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab3 What Does It Do? An Academic Content Distribution Network Redirects/caches HTTP requests Based on our OSDI 2002 paper on CDN performance An Open Proxy Network Probably the largest in existence

4 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab4 Who Is The Target Audience? Now Users wanting better performance People seeking “anonymity” Next Content providers seeking load sharing Later General support for absorbing flash crowds Avoid the “Slashdot Effect”

5 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab5 How Does It Work? Server surrogates (proxies) on most North American sites Originally everywhere, but we cut back Clients specify proxy to use Cache hits served locally Cache misses forwarded to CoDeeN nodes Maybe forwarded to origin servers

6 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab6 Request Forwarding

7 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab7 When Will It Be Ready? January – development started Reliability & stability major concerns March – stable enough for daily use April – security problems begin Shut down for one month June – Restarted “beta” Expecting “production” soon

8 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab8 Decisions – Good & Bad Use commercial proxy with API [USITS 2003] Good – mostly layer 7 concerns Bad – limits deployment size (donated licenses) Deployment on PlanetLab Good – otherwise impossible “Bad” – vulnerable to other experiments Allow open access Good – generates real traffic Bad – some traffic just plain mean

9 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab9 Lots of Malicious Traffic Spammers SMTP tunnels, POST forms, IRC channels Bandwidth hogs Google crawls, steganographers, X-Pacific Hackers & Spreaders Yahoo dictionary attacks, IIS vuln tests Content thieves E-journals/databases, local content Restrict ports & HTTP methods Multi-scale req & bw accounting Signature database & Robot test Determine location & privilege

10 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab10 Protecting Privilege

11 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab11 Attempted SMTP Tunnels/Day

12 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab12 By The Numbers… Restarted in late May In continuous operation Stats from first 8 weeks Over 59,000 unique IPs as clients Over 24 million requests serviced Valid rates up to 15K reqs/hour Roughly 1 million reqs/day aggregate

13 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab13 More Production Info About 2000 lines of code About ¼ is actual decision logic Uptimes limited by upgrades Generally 1-2 times/week Downtimes of 20 seconds/node Currently on ~40 nodes

14 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab14 Daily Requests (Serviced)

15 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab15 Welcome

16 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab16 Avoiding sorted by # avoiding

17 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab17 Load sorted by # load average

18 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab18 Total sorted by # total req rate

19 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab19 Users sorted by # users

20 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab20 The Troubles We’ve Caused Routinely trigger open proxy alerts Educating sysadmins, others Resource checks generate noise Got onto planetlab-support Really good honeypots 6000 SMTP flows/minute at CMU Spammers do ~1M HTTP ops/day

21 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab21 What We’ve Learned Parallel ssh is a must General commands/queries Basis for parallel scp Used to detect out-of-date files Monitoring is a must Too hard to see anomalies in 40+ nodes Almost looks like a demo Be careful accepting outside requests

22 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab22 What We Still Need Better layer 4 tools Hard to tell why things die Building complete heartbeats isn’t fun Better isolation on most resources CPU/OS: Java, VServers, ??? Others: FD exhaustion, disk space

23 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab23 What We Wouldn’t Mind… Customizable DNS mapping Map project.planet-lab.org to some node Projects could provide feedback Node availability, utility, etc Most IP geolocation seems locked up

24 Aug 12, 2003CoDeeN Overview - IRIS/PlanetLab24 More Info http://codeen.cs.princeton.edu

Download ppt "The CoDeeN Content Distribution Network Vivek S. Pai, Limin Wang, KyoungSoo Park, Ruoming Pang, Larry Peterson Princeton University August 12, 2003."

Similar presentations

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.

ITIS 1210 Introduction to Web-Based Information Systems Chapter 44 How Firewalls Work How Firewalls Work.
On the Effectiveness of Measurement Reuse for Performance-Based Detouring David Choffnes Fabian Bustamante Fabian Bustamante Northwestern University INFOCOM.

On the Effectiveness of Measurement Reuse for Performance-Based Detouring David Choffnes Fabian Bustamante Fabian Bustamante Northwestern University INFOCOM.
1 Content Delivery Networks iBAND2 May 24, 1999 Dave Farber CTO Sandpiper Networks, Inc.

1 Content Delivery Networks iBAND2 May 24, 1999 Dave Farber CTO Sandpiper Networks, Inc.
Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:

Chapter 10: Data Centre and Network Security Proxies and Gateways * Firewalls * Virtual Private Network (VPN) * Security issues * * * * Objectives:
Introduction The Basic Google Hacking Techniques How to Protect your Websites.

Introduction The Basic Google Hacking Techniques How to Protect your Websites.
An Analysis of Internet Content Delivery Systems Stefan Saroiu, Krishna P. Gommadi, Richard J. Dunn, Steven D. Gribble, and Henry M. Levy Proceedings of.

An Analysis of Internet Content Delivery Systems Stefan Saroiu, Krishna P. Gommadi, Richard J. Dunn, Steven D. Gribble, and Henry M. Levy Proceedings of.
Akamai OS War Stories Bruce Maggs. 2 15-410 Gratuitous Quote of the Day Well you’re not hardcore (No you’re not hardcore) Unless you live hardcore (Unless.

Akamai OS War Stories Bruce Maggs Gratuitous Quote of the Day Well you’re not hardcore (No you’re not hardcore) Unless you live hardcore (Unless.
Progress Report 11/1/01 Matt Bridges. Overview Data collection and analysis tool for web site traffic Lets website administrators know who is on their.

Progress Report 11/1/01 Matt Bridges. Overview Data collection and analysis tool for web site traffic Lets website administrators know who is on their.
Flash Crowds And Denial of Service Attacks: Characterization and Implications for CDNs and Web Sites Aaron Beach Cs395 network security.

Flash Crowds And Denial of Service Attacks: Characterization and Implications for CDNs and Web Sites Aaron Beach Cs395 network security.
Server Design, Architecture, Performance & Measurement Vivek Pai Princeton University October 17, 2001.

Server Design, Architecture, Performance & Measurement Vivek Pai Princeton University October 17, 2001.
Web Caching and CDNs March 3, 2004. Content Distribution Motivation –Network path from server to client is slow/congested –Web server is overloaded Web.

Web Caching and CDNs March 3, Content Distribution Motivation –Network path from server to client is slow/congested –Web server is overloaded Web.
Overlay Architecture and API Fang Yu Noah Treuhaft Takashi Suzuki Matthew Caesar.

Overlay Architecture and API Fang Yu Noah Treuhaft Takashi Suzuki Matthew Caesar.
Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.

Application Layer  We will learn about protocols by examining popular application-level protocols  HTTP  FTP  SMTP / POP3 / IMAP  Focus on client-server.
DotSlash: Providing Dynamic Scalability to Web Applications Weibin Zhao and Henning Schulzrinne Department of Computer Science, Columbia University More.

DotSlash: Providing Dynamic Scalability to Web Applications Weibin Zhao and Henning Schulzrinne Department of Computer Science, Columbia University More.
Content Delivery Networks. History Early 1990s sees 100% growth in internet traffic per year 1994 o Netscape forms and releases their first browser.

Content Delivery Networks. History Early 1990s sees 100% growth in internet traffic per year 1994 o Netscape forms and releases their first browser.
Web Content Delivery Networks Yogesh Bhumralkar. CDN: Motivations zCongestion in the Internet. zWeb Servers sometimes become overloaded due to too many.

Web Content Delivery Networks Yogesh Bhumralkar. CDN: Motivations zCongestion in the Internet. zWeb Servers sometimes become overloaded due to too many.
Foundations of Network and Computer Security J J ohn Black Lecture #35 Dec 9 th 2009 CSCI 6268/TLEN 5550, Fall 2009.

Foundations of Network and Computer Security J J ohn Black Lecture #35 Dec 9 th 2009 CSCI 6268/TLEN 5550, Fall 2009.
Caching and Content Distribution Networks. Web Caching r As an example, we use the web to illustrate caching and other related issues browser Web Proxy.

Caching and Content Distribution Networks. Web Caching r As an example, we use the web to illustrate caching and other related issues browser Web Proxy.
Web Proxy Server Anagh Pathak Jesus Cervantes Henry Tjhen Luis Luna.

Web Proxy Server Anagh Pathak Jesus Cervantes Henry Tjhen Luis Luna.
Information-Centric Networks05a-1 Week 5 / Paper 1 On the use and performance of content distribution networks –Balachander Krishnamurthy, Craig Wills,

Information-Centric Networks05a-1 Week 5 / Paper 1 On the use and performance of content distribution networks –Balachander Krishnamurthy, Craig Wills,

Similar presentations

Ads by Google